ExpertHard1 markMultiple Choice
AZ-305 · Question 38 · Domain 4.1: Design a compute solution
You are designing the network architecture for an Azure Kubernetes Service (AKS) cluster.
The cluster will host hundreds of microservices. You have a strict requirement that every pod must receive an IP address from the Azure Virtual Network subnet so that on-premises resources connected via ExpressRoute can route traffic directly to individual pods.
Which AKS network plugin must you use?
You are designing the network architecture for an Azure Kubernetes Service (AKS) cluster.
The cluster will host hundreds of microservices. You have a strict requirement that every pod must receive an IP address from the Azure Virtual Network subnet so that on-premises resources connected via ExpressRoute can route traffic directly to individual pods.
Which AKS network plugin must you use?
Answer options:
A.
Azure CNI
B.
Kubenet
C.
Flannel
D.
Calico
How to approach this question
Recognize the difference between overlay networking (Kubenet) and native VNet integration (Azure CNI).
Full Answer
A.Azure CNI✓ Correct
With Azure Container Networking Interface (CNI), every pod gets an IP address from the subnet and can be accessed directly. These IP addresses must be unique across your network space, and must be planned in advance. This allows on-premises resources connected via ExpressRoute or VPN to communicate directly with the pods. Kubenet uses an overlay network where pods get IPs from a private, non-routable space, and traffic is NAT'd through the node's IP.
Common mistakes
Choosing Kubenet to save IP addresses, ignoring the requirement for direct routability from on-premises.
Practice the full Azure Solutions Architect Expert AZ-305 Practice Exam 1
55 questions · hints · full answers · grading
More questions from this exam
Q01Contoso Ltd is a global financial institution with 80 Azure subscriptions spread across 4 managem...MediumQ02Fabrikam Inc. operates a hybrid cloud environment with 500 on-premises VMware virtual machines ru...HardQ03A startup company has a single Azure subscription with a monthly budget of $5,000.
The CFO want...EasyQ04You are designing an Azure Sentinel architecture for a Managed Security Service Provider (MSSP). ...MediumQ05A healthcare enterprise is migrating its infrastructure to Azure. They have strict compliance req...Hard